Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: “block, bfq”: fixed a potential UAF issue for “bfqq-bic” in “bicsetbfqq”. After the commit “64dc8c732f5c” “block, bfq: fix possible UAF for ‘bfqq-bic’”, “bic-bfqq” will be accessed in “bicsetbfqq”. However, in some contexts,...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: “block, bfq”: fixed a potential use-after-free UAF in bfqexiticqbfqq. The commit 64dc8c732f5c “block, bfq: fix possible UAF for ‘bfqq-bic’” addresses the issue where bfqexiticqbfqq might access ‘bic-bfqq’ before calling bicsetbfq...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013517)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013517 advisory. In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for bfqq in bicsetbfqq After commit 64dc8c732f5c block, bfq: fix possible uaf...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011247)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011247 advisory. In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible uaf for 'bfqq-bic' Our test report a uaf for 'bfqq-bic' in 5.10:...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010981)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010981 advisory. In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for bfqq in bfqexiticqbfqq Commit 64dc8c732f5c block, bfq: fix possible uaf f...

Malicious code in bic-seo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88b87b18acc3a062d6a79eb7fd959cbbfea586694cf6d918aac1ddacaa062518 The package bic-seo was found to contain malicious code. Source: ossf-package-analysis 7eeaff4f3318ed34f500a278b37ae6e39604797f0de8643056247dc4ab1ebc...

MAL-2026-1995 Malicious code in bic-seo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88b87b18acc3a062d6a79eb7fd959cbbfea586694cf6d918aac1ddacaa062518 The package bic-seo was found to contain malicious code. Source: ossf-package-analysis 7eeaff4f3318ed34f500a278b37ae6e39604797f0de8643056247dc4ab1ebc...

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Use After Free (CVE-2024-47706)

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible UAF for bfqq-bic with merge chain In this case, IO from Process 1 will get bfqq2 from BIC1 first, and then get bfqq3 through merge chain, and finially handle IO by bfqq3. Howerver, current code will think...

Linux Distros Unpatched Vulnerability : CVE-2022-50488

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - block, bfq: fix possible uaf for 'bfqq-bic' Our test report a uaf for 'bfqq-bic' in 5.10: ================================================================== BUG...

EUVD-2014-4443

Malware in sbrugna...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-383961)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-383961 advisory. In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible UAF for bfqq-bic with merge chain 1 initial state, three tasks: Process ...

CVE-2022-50488 block, bfq: fix possible uaf for 'bfqq->bic'

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible uaf for 'bfqq-bic' Our test report a uaf for 'bfqq-bic' in 5.10: ================================================================== BUG: KASAN: use-after-free in bfqselectqueue+0x378/0xa30 CPU: 6 PID:...

CVE-2022-50488 block, bfq: fix possible uaf for 'bfqq->bic'

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible uaf for 'bfqq-bic' Our test report a uaf for 'bfqq-bic' in 5.10: ================================================================== BUG: KASAN: use-after-free in bfqselectqueue+0x378/0xa30 CPU: 6 PID:...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a post-release reuse issue with bfqq-bic, which could lead to memory corruption...

PT-2025-40722

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.10.0-60.18.0.50.h602 Description The Linux kernel contains a use-after-free issue within the block, bfq Best Effort Queue subsystem. Specifically, the issue relates to the bfqq-bic pointer. A scenario involving...

EUVD-2025-24202

Malicious code in bioql PyPI...

EUVD-2022-55526

Malicious code in bioql PyPI...

SUSE CVE-2024-47706

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible UAF for bfqq-bic with merge chain 1 initial state, three tasks: Process 1 Process 2 Process 3 BIC1 BIC2 BIC3 | ^ | ^ | ^ | | | | | | V | V | V | bfqq1 bfqq2 bfqq3 process ref: 1 1 1 2 bfqq1 merged to bfqq...

SUSE CVE-2022-50329

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for bfqq in bfqexiticqbfqq Commit 64dc8c732f5c "block, bfq: fix possible uaf for 'bfqq-bic'" will access 'bic-bfqq' in bicsetbfqq, however, bfqexiticqbfqq can free bfqq first, and then call bicsetbfqq, which...

CVE-2022-50329

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for bfqq in bfqexiticqbfqq Commit 64dc8c732f5c "block, bfq: fix possible uaf for 'bfqq-bic'" will access 'bic-bfqq' in bicsetbfqq, however, bfqexiticqbfqq can free bfqq first, and then call bicsetbfqq, which...